Bugtraq: 'sec-fix' for NT 3.51

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

'sec-fix' for NT 3.51

From: aleph1 () DFW NET (Aleph One)
Date: Thu, 26 Jun 1997 09:54:57 -0500

---------- Forwarded message ----------
Date: Wed, 25 Jun 1997 23:02:34 +0100
From: Alan C. Ramsbottom <acr () ALS CO UK>
To: NTBUGTRAQ () RC ON CA
Subject: 'sec-fix' for NT 3.51

Perhaps everyone has already upgraded all their machines, but an NT
3.51 version of the 'sec-fix' seems to have quietly arrived on the
MS ftp server a couple of weeks ago. It can be found at:

   ftp.microsoft.com

..in the (very long) directory:

  /bussys/winnt/winnt-public/fixes/usa/NT351/hotfixes-postSP5/sec-fix

The 3.51 version of the fix addresses two security 'exploits' that
are described in the KB articles:

   Q143474  - Anonymous logon user (Red Button).
   Q161372  - SMB signing to prevent "Man in the middle" attacks.

Unlike the NT 4 version (now part of SP3), this *doesn't* include
the System Key fix that allows you to enable strong encryption of
the SAM database (Q143475).

Regards,

--Alan--
acr () als co uk

By Date By Thread

Current thread:

Re: [ADVISORY] 4.4BSD Securelevels, (continued)
- Re: [ADVISORY] 4.4BSD Securelevels Thomas H. Ptacek (Jun 25)
- Solaris Ping bug (DoS) Adam Caldwell (Jun 25)
  - Re: Solaris Ping bug (DoS) Gnuchev Fedor (Jun 26)
  - Re: Solaris Ping bug (DoS) just me. (Jun 26)
  - Re: Solaris Ping bug (DoS) Francesco Messineo (Jun 26)
  - 'sec-fix' for NT 3.51 Aleph One (Jun 26)
  - Problem in dxterm (ULTRIX) Trevor Schroeder (Jun 26)
  - Re: Solaris Ping bug (DoS) Philip Kizer (Jun 26)
    - Solaris Ping bug(inetsvc) Renteria Tabares J. (Jun 27)
    - Announce: ypcat for Win NT/95 Aaron Spangler (Jun 27)
  - Re: Solaris Ping bug (DoS) Geoff Mulligan (Jun 27)